US4879645A - Data processing device with high security of stored programs - Google Patents

Data processing device with high security of stored programs Download PDF

Info

Publication number
US4879645A
US4879645A US07157109 US15710988A US4879645A US 4879645 A US4879645 A US 4879645A US 07157109 US07157109 US 07157109 US 15710988 A US15710988 A US 15710988A US 4879645 A US4879645 A US 4879645A
Authority
US
Grant status
Grant
Patent type
Prior art keywords
program
specific
run
means
card
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Lifetime
Application number
US07157109
Inventor
Masuo Tamada
Hitoshi Kokuryo
Shinsuke Tamura
Hiroshi Ozaki
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Toshiba Corp
Original Assignee
Toshiba Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Grant date

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/71Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information
    • G06F21/77Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information in smart cards
    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/51Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems at application loading time, e.g. accepting, rejecting, starting or inhibiting executable software based on integrity or source reliability
    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/70Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
    • G06F21/71Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information
    • G06F21/75Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information by inhibiting the analysis of circuitry or operation
    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06NCOMPUTER SYSTEMS BASED ON SPECIFIC COMPUTATIONAL MODELS
    • G06N5/00Computer systems utilising knowledge based models
    • G06N5/04Inference methods or devices
    • G06N5/048Fuzzy inferencing
    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06QDATA PROCESSING SYSTEMS OR METHODS, SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL, SUPERVISORY OR FORECASTING PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/341Active cards, i.e. cards including their own processing means, e.g. including an IC or chip
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/0806Details of the card
    • G07F7/0813Specific details related to card security
    • G07F7/082Features insuring the integrity of the data on or in the card
    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/10Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
    • G07F7/1008Active credit-cards provided with means to personalise their use, e.g. with PIN-introduction/comparison system
    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2101Auditing as a secondary aspect
    • GPHYSICS
    • G06COMPUTING; CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2153Using hardware token as a secondary aspect

Abstract

An IC card comprises CPU, PROM for storing programs, and RAM for storing the results of arithmetic operations. PROM stores a table on which the names of specific programs are registered. RAM has execution counters which counts up each time each program is run so that the number of times the specific program is run is memorized. Prior to the running of each program by CPU, it is judged whether or not the program is a specific one. If it is the specific program, the execusion counter counts up. When the count value of the execution counter is above a predetermined value, the running of the specific program is prevented.

Description

This is a continuation of application Ser. No. 06/714,862, filed Mar. 22, 1985, which was abandoned upon the filing hereof.

BACKGROUND OF THE INVENTION

This invention relates to a data processing device, and more particularly, to the protection of a specific program run in a portable data processing device such as an IC card which includes a microcomputer, ROM, RAM, etc.

Banks have recently issued IC cards which have a RAM for storing an account number and transaction data, a ROM for storing a control program, and a microprocessor. The ROM memorizes a password of the card. Only when the password input in a keyboard of a bank terminal unit coincides with that stored in the data processing device, can the card be used, so that illegal use of the card by a third person is prevented. However, illegal use by its owner is not prevented. For example, the ROM stores a coding process program for the communucation between the IC card and the host computer, which must be kept secret from the user (owner of the card). The IC card stores many other secret programs as well. The algorithm of these programs can be discovered if they are run millions of times or more. It has so far been impossible to completely prevent illegal use of the IC card by the owner through the discovery of the algorithms of the programs.

SUMMARY OF THE INVENTION

The object of the invention is to provide a data processing device wherein the algorithm of a specific program cannot be discovered. This object can be achieved by limiting the number of times the specific program is run, prolonging the time taken in running the specific program, preventing the continuous running of the specific program, and/or preventing each program from being run in an order which is not predetermined.

BRIEF DESCRIPTION OF THE DRAWINGS

FIG. 1 is a perspective view showing a terminal apparatus used in a bank for use with an IC card according to a first embodiment of the data processing apparatus of the present invention;

FIG. 2 is a block diagram of the terminal apparatus shown in FIG. 1;

FIG. 3 is a block diagram of the IC card according to the first embodiment;

FIG. 4 is a flow chart of the operation of the first embodiment;

FIG. 5 is a flow chart illustrating the operation of a second embodiment of this invention;

FIG. 6 is a flow chart illustrating the operation of a third embodiment of this invention;

FIG. 7A shows an example of an execution order table Ep used in a fourth embodiment of this invention;

FIG. 7B shows an example of register Ef for registering the name of the program which was formerly run and register En for registering the name of the program which is presently being run, as used in the fourth embodiment; and

FIG. 8 is a flow chart showing the operation of the fourth embodiment.

DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENTS

A first embodiment of the data processing device according to the present invention will be described with reference to the accompanying drawings.

Banking facilities have recently issued IC cards in lieu of bankbooks, which memorize the account number and transaction data. The IC card is used in this description as an example of the data processing device. The IC card operates with a bank terminal unit shown in FIGS. 1 and 2 to perform transactions.

FIG. 1 perspectively shows the bank terminal unit. FIG. 2 shows a block circuit thereof. Terminal unit 11 has CPU 21 for its entire control. CPU 21 is connected to ROM 22 storing control programs and to RAM 23 for storing data. Also, CPU 21 is connected to keyboard 24, CRT display 25, printer 26, floppy disc unit 27, IC card reader/writer 28 through interface 29, and modem 31 through interface 32. IC card reader/writer 28 reads and writes data in IC card 12 inserted through card insertion opening 28'. Modem 31 modulates the data fed from CPU 21. By using telephone 30, the modulated data are fed through telephone line 13 to a host computer, etc. Modem 31 demodulates the data fed from the host computer, etc. through line 13 and supplies them to CPU 21. The data communication between CPU 21 and the host computer is performed by coding the data to keep the data secret. A program for producing coding key data used in the coding process is stored in IC card 12, and will be described later.

FIG. 3 shows the structure of IC card 12. CPU 33, which is a microcomputer, is connected to PROM 34 which memorizes control programs, e.g., for producing the above-mentioned secret coding key data producing program necessary for the coding process (hereinafter, a program which must be kept secret from the user is referred to as a "specific program") and for limiting the running of this specific program. PROM 34 also memorizes a password assigned to the owner of the IC card. CPU 33 is also connected to RAM 35 for storing data and to connector 36 which is coupled to a connecting pin (not shown) provided within IC card reader/writer 28.

A system comprising the IC card and the bank terminal unit is generally operated in the following manner. IC card 12 is inserted into insertion opening 28'. Connector 36 of IC card 12 is mechanically and electrically connected to the connecting pin in IC card reader/writer 28. The password is input from keyboard 24, and is fed to CPU 33 of IC card 12 through CPU 21, interface 29 and IC card reader/writer 28. The password is then compared with the password stored in PROM 34.

The operation for limiting the number of times specific programs are run, which is essential to the invention, will now be described. FIG. 4 illustrates the operation of the first embodiment of the invention. In addition to the above-described structure, in the first embodiment, PROM 34 has tables registering the names of specific programs, and RAM 35 has execution counters which count and memorize the number of times the corresponding specific programs are run.

When the power is turned on, the execution counter is cleared in Step 1. In Step 2, the name of a program to be run is input. In Step 3, the name of the input program is compared with that of the programs registered in the tables to judge whether or not the program to be run is the specific program. If it is not the specific program, it is run in Step 6. Then, the operation returns from Step 6 to Step 2 to wait for the input of the name of the next program.

When the program to be run is judged to be the specific one, Step 4 judges whether or not the count value of the execution counter for that program is below a predetermined value. If the value of the execution counter is below or equal to the predetermined value, "1" is counted in the execution counter in Step 5, and the routine goes to Step 6 where the program is executed. If the value of the execution counter is above the predetermined value, the program is not run, and the operation returns from Step 4 to Step 2 to wait for the input of the name of the next program. The predetermined value, which is compared with the count value of the execution counter and indicates the maximun number of times the specific program is allowed to be run, is set above the value at which the specific program is normally run from the turn-on to turn-off of the power and far below the value at which the algorithm of the specific program may be discovered.

In the first embodiment, unless the power of the terminal unit is turned off and then on, the number of times the specific program is run is limited. Thus, it is impossible to execute the specific program millions of times or more to discover the algorithm of the specific program. However, as stated above, the execution counter is cleared when the power is turned on. If the power of the terminal unit is turned off and then turned on again to clear the execution counter, the predetermined number of times may be increased indefinitely. This problem can be eliminated if the count value in the execution counter is stored in PROM 34 before the power is turned off and the execution counter is initialized based on the data in PROM 34 each time the power is turned on again.

The description of FIG. 4 does not refer to the comparison of the password. Generally, the comparison of the password is performed right before the running of the program in Step 6.

A second embodiment of the invention will be described hereinafter. FIG. 5 shows the operation of the second embodiment. The IC card of the second embodiment has PROM 35 for storing tables registering the names of specific programs and tables memorizing a predetermined delay time for each specific program.

When the power is turned on, the name of a program to be run is input in Step 11. In Step 12, it is judged whether the input program is the specific program. If it is not the specific program, the program is run in Step 14. Then, the operation returns to Step 11 to wait for the input of the name of the next program. On the other hand, if the input program is the specific one, a delay time operation is executed in Step 13 before the program is run in Step 14. The delay time is designed to be short in consideration of the normal operation. However, if the delay time operation is repeated millions of times or more, the total delay time becomes immense so that it is, in fact, impossible to run the specific program many times to discover the algorithm of the specific program.

In FIG. 5, the delay time operation is executed before the specific program is run. However, it is possible to execute the delay time operation while or after the specific program is run. In addition, it is possible to register the execution position of the delay time program in the above-mentioned registration table to change the execution position of the delay time program according to each specific program.

FIG. 6 shows a third embodiment of the invention, which is designed to prohibit the continuous running of the specific program. As in the first embodiment, PROM 34 has tables registering the names of specific programs, and RAM 35 has execution counters which count and memorize the number of times the corresponding specific program is run.

When the power is turned on, the execution counters are cleared in Step 21. In Step 22, the name of a program to be run is input. In Step 23, it is judged whether or not the input program is a specific one. If the input program is not the specific one, it is run in Step 27. Then, the operation returns from Step 27 to Step 22 to wait for the input of the name of the next program. If the input program is the specific one, Step 24 judges whether or not the count value of the execution counter is "1". If the count value is not "1", "1" is counted in the counter in Step 25, and the execution counters excluding that of the present specific program are cleared. Thereafter, the routine goes to Step 27 where the program is executed. On the other hand, if the count value is "1," the operation returns to Step 22 to wait for the input of the name of the next program.

In the third embodiment, value "1" is set in the execution counter right before the specific program is run, and the execution counter of the specific program is cleared right before another program is run. Therefore, the same specific program cannot be continuously run. The repeated running of the same specific program inevitably involves the running of other intervening specific programs. Twice the normal time is required to repeat the running of the specific prgram. Thus, it is impossible to discover the algorithm of the specific program.

Next, a fourth embodiment will be described. In the fourth embodiment, the order of executing each program is preset. Because the execution of the programs in a different order is impossible, the continuous running of the same program is prevented. To this end, execution order table Ep as shown in FIG. 7A is stored in PROM 34 of IC card 12. Also, RAM 35 has register Ef for registering the name of the formerly run program (or formerly run program name register Ef) and register En for registering the name of the presently run program (or presently run program name register En) as shown in FIG. 7B. Execution order table Ep registers program names 0, A, B, C and D in an order which allows the programs to be run. Because the programs can be run only in the order registered in the execution order table Ep, the repeated running of a program necessarily involves the running of another program and takes a great amount of time. Thus, it is, in fact, impossible to discover algorithm by repeating the program.

The above operation will be described in greater detail with reference to FIG. 8. When the power is turned on, formerly run program name register Ef is cleared in Step 31. In Step 32, the name of the program to be run is input to presently run program name register En. Step 33 judges whether or not the contents of registers Ef and Ep have the order registered in execution order table Ep. If these contents do not have the registered order, the operation goes back to Step 32 to wait for the input of the name of the next program. If they have the registered order, Step 34 transfers the data from register En to register Ef, and Step 35 runs the program. After Step 35, the operation returns to Step 32 to wait for the input of the name of the next program.

In the fourth embodiment, since the order of the programs is predetermined, it is impossible to repeat the running of the specific program in an unregistered order to discover the algorithm of the specific program. In this description, the order of only two programs has been predetermined. However, it is possible to predetermine the order of three or more programs.

The present invention can provide a data processing device wherein the running of a specific program which is secret to the user cannot be repeated many times. Thus, the discovery of the algorithm of the specific program is prevented.

Claims (12)

What is claimed is:
1. An IC card designed for use with a read/write terminal device and having a card-shaped housing, comprising:
memory means for storing data and programs, the programs including a specific program which must be kept secret from uses of the IC card;
password identification means for receiving a password supplied from said terminal device and judging whether or not the password is correct, according to predetermined criteria;
arithmetic operation means, connected to said memory means, for running a program specified by a command from said terminal device when the password is judged to be correct by said password identification means;
means for judging whether or not the program specified by said command is the specific program;
means for counting the number of times the specific program is run, the counted number being cleared when the IC card is powered off; and
means for (1) preventing the specific program from being run by said arithmetic operation means after the counter number reaches a predetermined value and for (2) allowing the specific program to run by said arithmetic operation means after the counted number is cleared until the counted number reaches the predetermined value.
2. The device according to claim 1, wherein said memory means and said arithmetic operation means are constituted by semiconductor integrated circuits.
3. The device according to claim 1, wherein said device is an IC card for use with a terminal device.
4. The device according to claim 3, further comprising a non-volatile memory for storing said count value of the number of executions of the specific program when the terminal device is powered off and the count value is preset according to the stored value in the nonvolatile memory when the terminal device is powered on.
5. The device according to claim 1, in which said judging means includes a counter for counting the number of times the specific program is run, and means for resetting the counter to zero when the device is turned on.
6. A data processing device comprising:
memory means for storing data and programs, the programs including a specific program which must be kept secret from users of the device;
password identification means for receiving a password externally input and judging whether or not the password is correct, according to predetermined criteria;
arithmetic operation means, connected to said memory means, for running a predetermined program stored in said memory means when the password is judged to be correct by said password identification means;
means for judging whether or not the predetermined program is the specific program; and
means for delaying a preset time before the predetermined program is run by said arithmetic operation means if the predetermined program is the specific program and for immediately running the predetermined program if the predetermined program is not the specific program.
7. The device according to claim 6, wherein said memory means and said arithmetic operation means are constituted by semiconductor integrated circuits.
8. The device according to claim 6, wherein said device is an IC card for use with a terminal device.
9. An IC card adapted to be used with a read/write terminal device and having a card shape housing, comprising:
memory means for storing data and programs, the programs including first and second specific programs which must be kept secret from users of the IC card;
password identification means for receiving a password supplied from said terminal device and judging whether or not the password is correct according to predetermined criteria;
arithmetic operation means, connected to said memory means, for running a program specified by a command from said terminal device when the password is judged to be correct by said password identification means;
means for judging whether or not the program specified by said command is the first specific program; and
means for periodically preventing continuous running of the first specific program by said arithmetic operation means wherein after every running of the first specific program, a second specific program must be run before the first specific program can be run again.
10. The device according to claim 9, wherein said memory means and said arithmetic operation means are constituted by semiconductor integrated circuits.
11. The device according to claim 9, wherein said device is an IC card for use with a terminal device.
12. The device according to claim 9, in which said judging means includes:
counters for the specific programs, whose count is the number of times the specific program is run,
means for resetting the counters for the programs other than the specific program immediately running, and
means for preventing the execution of the specific program, when said judging means judges a program is the specific program and the counter for the specific program indicates the specific program was run immediately prior to the current run.
US07157109 1984-03-31 1988-02-10 Data processing device with high security of stored programs Expired - Lifetime US4879645A (en)

Priority Applications (2)

Application Number Priority Date Filing Date Title
JP59-63618 1984-03-31
JP6361884A JPS60207957A (en) 1984-03-31 1984-03-31 Data protecting system

Related Parent Applications (1)

Application Number Title Priority Date Filing Date
US71486285 Continuation 1985-03-22

Publications (1)

Publication Number Publication Date
US4879645A true US4879645A (en) 1989-11-07

Family

ID=13234480

Family Applications (1)

Application Number Title Priority Date Filing Date
US07157109 Expired - Lifetime US4879645A (en) 1984-03-31 1988-02-10 Data processing device with high security of stored programs

Country Status (4)

Country Link
US (1) US4879645A (en)
EP (1) EP0157303B1 (en)
JP (1) JPS60207957A (en)
DE (1) DE3580778D1 (en)

Cited By (52)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5056009A (en) * 1988-08-03 1991-10-08 Mitsubishi Denki Kabushiki Kaisha IC memory card incorporating software copy protection
US5067154A (en) * 1989-04-17 1991-11-19 Hitachi, Ltd. Terminal management method and apparatus
US5089951A (en) * 1987-11-05 1992-02-18 Kabushiki Kaisha Toshiba Microcomputer incorporating memory
US5099516A (en) * 1989-06-12 1992-03-24 Dell Corporate Services Corporation Digital computer code word identification system
US5131091A (en) * 1988-05-25 1992-07-14 Mitsubishi Denki Kabushiki Kaisha Memory card including copy protection
US5233658A (en) * 1990-05-09 1993-08-03 Bianco James S Method and means to limit access to computer systems
US5249294A (en) * 1990-03-20 1993-09-28 General Instrument Corporation Determination of time of execution of predetermined data processing routing in relation to occurrence of prior externally observable event
US5293422A (en) * 1992-09-23 1994-03-08 Dynatek, Inc. Usage control system for computer software
US5297200A (en) * 1989-04-01 1994-03-22 Nighthawk Electronics Limited Computer security system
US5313639A (en) * 1992-06-26 1994-05-17 George Chao Computer with security device for controlling access thereto
US5321839A (en) * 1989-07-13 1994-06-14 Canon Kabushiki Kaisha Electronic equipment including non-volatile memory means for storing control information
DE9408766U1 (en) * 1994-05-28 1994-08-11 Sigma Ges Fuer Systementwicklu Multifunctional computerized telephone system
US5426762A (en) * 1985-06-24 1995-06-20 Nintendo Co., Ltd. System for determining a truth of software in an information processing apparatus
US5440631A (en) * 1992-04-24 1995-08-08 Fijitsu Limited Information distribution system wherein storage medium storing ciphered information is distributed
US5475839A (en) * 1990-03-28 1995-12-12 National Semiconductor Corporation Method and structure for securing access to a computer system
US5481742A (en) * 1990-05-04 1996-01-02 Reed Elsevier Inc. Printer control apparatus for remotely modifying local printer by configuration signals from remote host to produce customized printing control codes
US5552858A (en) * 1989-05-26 1996-09-03 Canon Kabushiki Kaisha Image forming apparatus having a detachable external memory unit
US5680453A (en) * 1994-08-10 1997-10-21 Fujitsu Limited Software delivery system, center device, relaying device and user terminal device
US5737415A (en) * 1994-08-10 1998-04-07 Fujitsu Limited Data management module, data reproduction management device and data reproduction management system
US5761609A (en) * 1995-03-09 1998-06-02 United Microelectronics Corporation Limited use circuit
US5761651A (en) * 1994-08-10 1998-06-02 Fujitsu Limited Software charging system and software data utilization permitting device
US5768387A (en) * 1994-08-10 1998-06-16 Fujitsu Limited Key authentication method and key authentication apparatus
US5784464A (en) * 1995-05-02 1998-07-21 Fujitsu Limited System for and method of authenticating a client
US5809298A (en) * 1994-09-09 1998-09-15 Fujitsu Limited File server
US5812661A (en) * 1994-08-10 1998-09-22 Fujitsu Limited Software reproduction apparatus
US5832083A (en) * 1994-09-09 1998-11-03 Fujitsu Limited Method and device for utilizing data content
US5835589A (en) * 1995-04-12 1998-11-10 Fujitsu Limited Optical recording medium to store and access large volumes of data
US5838791A (en) * 1994-08-10 1998-11-17 Fujitsu Limited Encoder and decoder
US5848154A (en) * 1994-08-10 1998-12-08 Fujitsu Limited Apparatus for managing software using quantity
US5875247A (en) * 1994-09-09 1999-02-23 Fujitsu Limited System for decrypting encrypted software
US5887192A (en) * 1994-08-10 1999-03-23 Fujitsu Limited Software usage measurement apparatus for imposing a proper charge in accordance with number of times multimedia unit data of a software is being processed
US5938767A (en) * 1996-08-19 1999-08-17 Horn; Douglas Electronic information lockout system
FR2786006A1 (en) * 1998-11-17 2000-05-19 Schlumberger Systems & Service Device for limitation of fraud in a INTEGRATED CIRCUIT CARD
US6071191A (en) * 1995-11-22 2000-06-06 Nintendo Co., Ltd. Systems and methods for providing security in a video game system
US6091817A (en) * 1992-10-26 2000-07-18 Intellect Australia Pty Ltd. Host and user transaction system
US6190257B1 (en) 1995-11-22 2001-02-20 Nintendo Co., Ltd. Systems and method for providing security in a video game system
WO2001052201A1 (en) * 2000-01-14 2001-07-19 Gemplus Method for protecting against theft of a pin number in (a) multi-application smart card(s) and chip card(s) implementing said method
US6278984B1 (en) 1994-09-09 2001-08-21 Fujitsu Limited Software processing apparatus writing software to a medium only if identification information in the software corresponds to identification information in the medium
US6466657B1 (en) * 1991-05-10 2002-10-15 Telia Ab Arrangement for acquisition of services via a telephone set
FR2834366A1 (en) * 2001-12-28 2003-07-04 Ct D Echanges De Donnees Et D Smart card self-locking, securisation device of such a card and associated processes
US6636970B2 (en) 1995-02-14 2003-10-21 Fujitsu Limited Software encoding using a combination of two types of encoding and encoding type identification information
EP1094423A3 (en) * 1999-10-19 2004-01-07 Hitachi, Ltd. Card observing method
US6711685B1 (en) 1998-07-17 2004-03-23 International Business Machines Corporation System and procedure for protection against the analytical espionage of secret information
US20040188519A1 (en) * 2003-03-31 2004-09-30 Kepler, Ltd. A Hong Kong Corporation Personal biometric authentication and authorization device
US20050188425A1 (en) * 2004-02-19 2005-08-25 Douglas Horn Electronic information lockout system
EP1612639A1 (en) * 2004-06-30 2006-01-04 ST Incard S.r.l. Method for detecting and reacting against possible attack to security enforcing operation performed by a cryptographic token or card
WO2006090231A2 (en) * 2005-02-25 2006-08-31 Axalto Sa Method to secure writing in memory against attacks by radiation or other
US7246375B1 (en) * 1997-07-10 2007-07-17 Gemplus Method for managing a secure terminal
US20100314451A1 (en) * 2009-06-12 2010-12-16 Christophe Goyet Electronic device and associated method
US20110252222A1 (en) * 2010-04-07 2011-10-13 Proton World International N.V. Event counter in a system adapted to the javacard language
US20120203956A1 (en) * 2011-02-08 2012-08-09 Seiko Epson Corporation Recording device, control method for recording device, and recording medium
FR2999747A1 (en) * 2012-12-19 2014-06-20 Oberthur Technologies Method for securing a device capable to communicate with a reader according to two authentication protocols

Families Citing this family (29)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
DE3682476D1 (en) * 1985-10-07 1991-12-19 Toshiba Kawasaki Kk geraet portable electronic.
JP2557838B2 (en) * 1986-02-18 1996-11-27 株式会社東芝 Ic mosquitoes - de
FR2596173B1 (en) * 1986-03-20 1990-02-02 Bull Sa System optional access protection is a computer, the initialization process and implementation of the protection and use of the protection system in a machine access method
JPH0583959B2 (en) * 1987-10-29 1993-11-30 Toppan Printing Co Ltd
JPH02165290A (en) * 1988-12-19 1990-06-26 Hitachi Maxell Ltd Ic card and method for operating ic card
CA2037857C (en) * 1990-03-20 2001-01-16 Roy Allen Griffin, Iii Prevention of determination of time of execution of predetermined data processing routine in relation to occurrence of prior observable external event
FR2667172A1 (en) * 1990-09-21 1992-03-27 Samsung Electronics Co Ltd Device and method for controlling a common terminal using a memory card.
FR2676291B1 (en) * 1991-05-06 1995-02-24 Bull Sa
FR2705810B1 (en) * 1993-05-26 1995-06-30 Gemplus Card Int Chip IC card provided with means for limiting the number of authentications.
FR2757972B1 (en) * 1996-12-31 1999-02-19 Bull Cp8 Process for securisation of a security module and security module combines
US6575372B1 (en) 1997-02-21 2003-06-10 Mondex International Limited Secure multi-application IC card system having selective loading and deleting capability
US6317832B1 (en) 1997-02-21 2001-11-13 Mondex International Limited Secure multiple application card system and process
EP1004992A3 (en) * 1997-03-24 2001-12-05 Visa International Service Association A system and method for a multi-application smart card which can facilitate a post-issuance download of an application onto the smart card
US6230267B1 (en) 1997-05-15 2001-05-08 Mondex International Limited IC card transportation key set
US6488211B1 (en) 1997-05-15 2002-12-03 Mondex International Limited System and method for flexibly loading in IC card
US6220510B1 (en) 1997-05-15 2001-04-24 Mondex International Limited Multi-application IC card with delegation feature
US6164549A (en) 1997-05-15 2000-12-26 Mondex International Limited IC card with shell feature
US6385723B1 (en) 1997-05-15 2002-05-07 Mondex International Limited Key transformation unit for an IC card
US6328217B1 (en) 1997-05-15 2001-12-11 Mondex International Limited Integrated circuit card with application history list
US6357665B1 (en) 1998-01-22 2002-03-19 Mondex International Limited Configuration of IC card
US6736325B1 (en) 1998-01-22 2004-05-18 Mondex International Limited Codelets
US6742120B1 (en) 1998-02-03 2004-05-25 Mondex International Limited System and method for controlling access to computer code in an IC card
DE19818830A1 (en) * 1998-04-27 1999-10-28 Deutsche Telekom Mobil Method of preventing, or making difficult, misuse of authentication procedures on a chip card interface imposes no limitations on rightful user of card
DE19818998B4 (en) * 1998-04-28 2008-12-24 Giesecke & Devrient Gmbh Procedures to protect against attacks on the authentication algorithm and the secret key of a smart card
FR2786007B1 (en) * 1998-11-18 2001-10-12 Gemplus Card Int Using Control Method for a smart card
EP1499975A2 (en) * 2001-10-26 2005-01-26 Preventon Technologies Limited Control of processes in a processing system
JP2007257542A (en) * 2006-03-24 2007-10-04 Toshiba Corp Composite portable electronic device and composite ic card
JP2009540395A (en) 2006-06-15 2009-11-19 株式会社東芝 Portable electronic device and a control method thereof
JP4896837B2 (en) * 2007-08-20 2012-03-14 株式会社東芝 Control method of the mobile electronic device and a portable electronic device

Citations (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPS549859A (en) * 1977-06-25 1979-01-25 Shimizu Construction Co Ltd Tower crane
JPS56136058A (en) * 1980-03-03 1981-10-23 Cii Method and device for transmitting secret data between transmitter and receiver
JPS57726A (en) * 1980-05-30 1982-01-05 Usac Electronics Ind Co Ltd Operation controlling system of information processor
US4352011A (en) * 1979-02-06 1982-09-28 Etablissement Public De Diffusion Dit "Telediffusion De France" Subscription card for a videotex receiver
JPS5941061A (en) * 1982-08-31 1984-03-07 Fujitsu Ltd Data processor
US4439670A (en) * 1979-11-30 1984-03-27 Electronique Marcel Dassault Method and device for the checking of the number of access attempts to an electronic store, notably that of an integrated circuit of an object such as a credit card or a buyer's card
US4453074A (en) * 1981-10-19 1984-06-05 American Express Company Protection system for intelligent cards
US4484067A (en) * 1980-10-31 1984-11-20 Werner Obrecht Card identification system
US4558176A (en) * 1982-09-20 1985-12-10 Arnold Mark G Computer systems to inhibit unauthorized copying, unauthorized usage, and automated cracking of protected software
US4583196A (en) * 1983-10-28 1986-04-15 Honeywell Inc. Secure read only memory
US4740890A (en) * 1983-12-22 1988-04-26 Software Concepts, Inc. Software protection system with trial period usage code and unlimited use unlocking code both recorded on program storage media

Patent Citations (11)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPS549859A (en) * 1977-06-25 1979-01-25 Shimizu Construction Co Ltd Tower crane
US4352011A (en) * 1979-02-06 1982-09-28 Etablissement Public De Diffusion Dit "Telediffusion De France" Subscription card for a videotex receiver
US4439670A (en) * 1979-11-30 1984-03-27 Electronique Marcel Dassault Method and device for the checking of the number of access attempts to an electronic store, notably that of an integrated circuit of an object such as a credit card or a buyer's card
JPS56136058A (en) * 1980-03-03 1981-10-23 Cii Method and device for transmitting secret data between transmitter and receiver
JPS57726A (en) * 1980-05-30 1982-01-05 Usac Electronics Ind Co Ltd Operation controlling system of information processor
US4484067A (en) * 1980-10-31 1984-11-20 Werner Obrecht Card identification system
US4453074A (en) * 1981-10-19 1984-06-05 American Express Company Protection system for intelligent cards
JPS5941061A (en) * 1982-08-31 1984-03-07 Fujitsu Ltd Data processor
US4558176A (en) * 1982-09-20 1985-12-10 Arnold Mark G Computer systems to inhibit unauthorized copying, unauthorized usage, and automated cracking of protected software
US4583196A (en) * 1983-10-28 1986-04-15 Honeywell Inc. Secure read only memory
US4740890A (en) * 1983-12-22 1988-04-26 Software Concepts, Inc. Software protection system with trial period usage code and unlimited use unlocking code both recorded on program storage media

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
Smart Credit Cards: The Answer to Cashless Shopping, European Search Report EP 85 10 3322. *

Cited By (73)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5426762A (en) * 1985-06-24 1995-06-20 Nintendo Co., Ltd. System for determining a truth of software in an information processing apparatus
US5089951A (en) * 1987-11-05 1992-02-18 Kabushiki Kaisha Toshiba Microcomputer incorporating memory
US5131091A (en) * 1988-05-25 1992-07-14 Mitsubishi Denki Kabushiki Kaisha Memory card including copy protection
US5056009A (en) * 1988-08-03 1991-10-08 Mitsubishi Denki Kabushiki Kaisha IC memory card incorporating software copy protection
US5297200A (en) * 1989-04-01 1994-03-22 Nighthawk Electronics Limited Computer security system
US5067154A (en) * 1989-04-17 1991-11-19 Hitachi, Ltd. Terminal management method and apparatus
US5552858A (en) * 1989-05-26 1996-09-03 Canon Kabushiki Kaisha Image forming apparatus having a detachable external memory unit
US5099516A (en) * 1989-06-12 1992-03-24 Dell Corporate Services Corporation Digital computer code word identification system
US5321839A (en) * 1989-07-13 1994-06-14 Canon Kabushiki Kaisha Electronic equipment including non-volatile memory means for storing control information
US5249294A (en) * 1990-03-20 1993-09-28 General Instrument Corporation Determination of time of execution of predetermined data processing routing in relation to occurrence of prior externally observable event
US5475839A (en) * 1990-03-28 1995-12-12 National Semiconductor Corporation Method and structure for securing access to a computer system
US5481742A (en) * 1990-05-04 1996-01-02 Reed Elsevier Inc. Printer control apparatus for remotely modifying local printer by configuration signals from remote host to produce customized printing control codes
US5233658A (en) * 1990-05-09 1993-08-03 Bianco James S Method and means to limit access to computer systems
US6466657B1 (en) * 1991-05-10 2002-10-15 Telia Ab Arrangement for acquisition of services via a telephone set
US5737413A (en) * 1992-04-24 1998-04-07 Fujitsu Limited Information distribution system wherein storage medium storing ciphered information is distributed
US5440631A (en) * 1992-04-24 1995-08-08 Fijitsu Limited Information distribution system wherein storage medium storing ciphered information is distributed
US5313639A (en) * 1992-06-26 1994-05-17 George Chao Computer with security device for controlling access thereto
US5293422A (en) * 1992-09-23 1994-03-08 Dynatek, Inc. Usage control system for computer software
US6091817A (en) * 1992-10-26 2000-07-18 Intellect Australia Pty Ltd. Host and user transaction system
US6095412A (en) * 1992-10-26 2000-08-01 Intellect Australia Pty Ltd. Host and user transaction system
DE9408766U1 (en) * 1994-05-28 1994-08-11 Sigma Ges Fuer Systementwicklu Multifunctional computerized telephone system
US5848154A (en) * 1994-08-10 1998-12-08 Fujitsu Limited Apparatus for managing software using quantity
US5737415A (en) * 1994-08-10 1998-04-07 Fujitsu Limited Data management module, data reproduction management device and data reproduction management system
US5768387A (en) * 1994-08-10 1998-06-16 Fujitsu Limited Key authentication method and key authentication apparatus
USRE40547E1 (en) 1994-08-10 2008-10-21 Fujitsu Limited Software reproduction apparatus
US5887192A (en) * 1994-08-10 1999-03-23 Fujitsu Limited Software usage measurement apparatus for imposing a proper charge in accordance with number of times multimedia unit data of a software is being processed
US5812661A (en) * 1994-08-10 1998-09-22 Fujitsu Limited Software reproduction apparatus
US5761651A (en) * 1994-08-10 1998-06-02 Fujitsu Limited Software charging system and software data utilization permitting device
US5838791A (en) * 1994-08-10 1998-11-17 Fujitsu Limited Encoder and decoder
US5680453A (en) * 1994-08-10 1997-10-21 Fujitsu Limited Software delivery system, center device, relaying device and user terminal device
US5875247A (en) * 1994-09-09 1999-02-23 Fujitsu Limited System for decrypting encrypted software
US5809298A (en) * 1994-09-09 1998-09-15 Fujitsu Limited File server
US6278984B1 (en) 1994-09-09 2001-08-21 Fujitsu Limited Software processing apparatus writing software to a medium only if identification information in the software corresponds to identification information in the medium
US5832083A (en) * 1994-09-09 1998-11-03 Fujitsu Limited Method and device for utilizing data content
US6636970B2 (en) 1995-02-14 2003-10-21 Fujitsu Limited Software encoding using a combination of two types of encoding and encoding type identification information
US5761609A (en) * 1995-03-09 1998-06-02 United Microelectronics Corporation Limited use circuit
US5835589A (en) * 1995-04-12 1998-11-10 Fujitsu Limited Optical recording medium to store and access large volumes of data
US5784464A (en) * 1995-05-02 1998-07-21 Fujitsu Limited System for and method of authenticating a client
US6190257B1 (en) 1995-11-22 2001-02-20 Nintendo Co., Ltd. Systems and method for providing security in a video game system
US6071191A (en) * 1995-11-22 2000-06-06 Nintendo Co., Ltd. Systems and methods for providing security in a video game system
US6394905B1 (en) 1995-11-22 2002-05-28 Nintendo Co., Ltd. Systems and methods for providing security in a video game system
US5938767A (en) * 1996-08-19 1999-08-17 Horn; Douglas Electronic information lockout system
US7246375B1 (en) * 1997-07-10 2007-07-17 Gemplus Method for managing a secure terminal
US6711685B1 (en) 1998-07-17 2004-03-23 International Business Machines Corporation System and procedure for protection against the analytical espionage of secret information
WO2000030047A1 (en) * 1998-11-17 2000-05-25 Schlumberger Systemes Device for limiting fraud in an integrated circuit card
FR2786006A1 (en) * 1998-11-17 2000-05-19 Schlumberger Systems & Service Device for limitation of fraud in a INTEGRATED CIRCUIT CARD
US6726108B1 (en) 1998-11-17 2004-04-27 Schlumberger Systemes Device for limiting fraud in an integrated circuit card
EP1094423A3 (en) * 1999-10-19 2004-01-07 Hitachi, Ltd. Card observing method
FR2803933A1 (en) * 2000-01-14 2001-07-20 Gemplus Card Int Process for protection against theft of the code in the chip cards (s) and multi-application smart cards (s) implementing the PROCESS
US20030057272A1 (en) * 2000-01-14 2003-03-27 Christophe Bidan Method for protecting against theft of a pin number in (a) multi-application smart card(s) and chip card(s) implementing said method
WO2001052201A1 (en) * 2000-01-14 2001-07-19 Gemplus Method for protecting against theft of a pin number in (a) multi-application smart card(s) and chip card(s) implementing said method
WO2003056524A1 (en) * 2001-12-28 2003-07-10 Centre D'echanges De Donnees Et D'information Du Credit Agricole Mutuel-Cedicam Self-locking smart card and device for ensuring the security thereof
FR2834366A1 (en) * 2001-12-28 2003-07-04 Ct D Echanges De Donnees Et D Smart card self-locking, securisation device of such a card and associated processes
US20040188519A1 (en) * 2003-03-31 2004-09-30 Kepler, Ltd. A Hong Kong Corporation Personal biometric authentication and authorization device
US6983882B2 (en) 2003-03-31 2006-01-10 Kepler, Ltd. Personal biometric authentication and authorization device
US20050188425A1 (en) * 2004-02-19 2005-08-25 Douglas Horn Electronic information lockout system
EP1612639A1 (en) * 2004-06-30 2006-01-04 ST Incard S.r.l. Method for detecting and reacting against possible attack to security enforcing operation performed by a cryptographic token or card
US8566927B2 (en) 2004-06-30 2013-10-22 Stmicroelectronics International N.V. Method for detecting and reacting against possible attack to security enforcing operation performed by a cryptographic token or card
WO2006002926A3 (en) * 2004-06-30 2006-03-16 St Incard S R L Method for detecting and reacting against possible attack to security enforcing operation performed by a cryptographic token or card
US20080209550A1 (en) * 2004-06-30 2008-08-28 St Incard S.R.L. Method For Detecting and Reacting Against Possible Attack to Security Enforcing Operation Performed by a Cryptographic Token or Card
WO2006002926A2 (en) * 2004-06-30 2006-01-12 Incard Sa Method for detecting and reacting against possible attack to security enforcing operation performed by a cryptographic token or card
WO2006090231A3 (en) * 2005-02-25 2007-04-12 Axalto Sa Method to secure writing in memory against attacks by radiation or other
EP1698958A1 (en) * 2005-02-25 2006-09-06 Axalto SA Method for securing the writing in memory against radiation attacks or other attacks
WO2006090231A2 (en) * 2005-02-25 2006-08-31 Axalto Sa Method to secure writing in memory against attacks by radiation or other
US20100314451A1 (en) * 2009-06-12 2010-12-16 Christophe Goyet Electronic device and associated method
US8430323B2 (en) * 2009-06-12 2013-04-30 Oberthur Technologies of America Corp. Electronic device and associated method
US20110252222A1 (en) * 2010-04-07 2011-10-13 Proton World International N.V. Event counter in a system adapted to the javacard language
US8819449B2 (en) * 2010-04-07 2014-08-26 Proton World International N.V. Event counter in a system adapted to the JavaCard language
CN102646028B (en) * 2011-02-08 2015-07-01 精工爱普生株式会社 Recording device and control method for recording device
US20120203956A1 (en) * 2011-02-08 2012-08-09 Seiko Epson Corporation Recording device, control method for recording device, and recording medium
CN102646028A (en) * 2011-02-08 2012-08-22 精工爱普生株式会社 Recording device, control method for recording device, and recording medium
FR2999747A1 (en) * 2012-12-19 2014-06-20 Oberthur Technologies Method for securing a device capable to communicate with a reader according to two authentication protocols
EP2747041A1 (en) * 2012-12-19 2014-06-25 Oberthur Technologies Method for securing a device capable of communicating with a reader according to two authentication protocols

Also Published As

Publication number Publication date Type
DE3580778D1 (en) 1991-01-17 grant
EP0157303A3 (en) 1988-01-13 application
JPS60207957A (en) 1985-10-19 application
EP0157303B1 (en) 1990-12-05 grant
EP0157303A2 (en) 1985-10-09 application

Similar Documents

Publication Publication Date Title
US5982293A (en) Transaction recovery in a value transfer system
US5239166A (en) Secure data interchange system erasing a card memory upon an invalid response
US4697072A (en) Identification card and authentication system therefor
US5754762A (en) Secure multiple application IC card using interrupt instruction issued by operating system or application program to control operation flag that determines the operational mode of bi-modal CPU
US4961142A (en) Multi-issuer transaction device with individual identification verification plug-in application modules for each issuer
US4758718A (en) High security IC card with an updatable password
EP0262025A2 (en) System for permitting access to data field area in IC card for multiple services
EP0138386A2 (en) Identification card
US5517569A (en) Methods and apparatus for interfacing an encryption module with a personal computer
US4707804A (en) Computer security system
US6193152B1 (en) Modular signature and data-capture system and point of transaction payment and reward system
US6091817A (en) Host and user transaction system
US4439670A (en) Method and device for the checking of the number of access attempts to an electronic store, notably that of an integrated circuit of an object such as a credit card or a buyer's card
US20010054148A1 (en) Field programmable smart card terminal and token device
US4719338A (en) Pocket calculator with credit card controller and dispenser
US5093862A (en) Data carrier-controlled terminal in a data exchange system
US5594227A (en) System and method for protecting unauthorized access to data contents
US5267149A (en) System and method for registering passwords
US6454173B2 (en) Smart card technology
US20030034389A1 (en) Method for spreading parameters in offline chip-card terminals as well as corresponding chip-card terminals and user chip-cards
EP0379333A1 (en) Secure data interchange system
US6557032B1 (en) Data processing system using active tokens and method for controlling such a system
US6669100B1 (en) Serviceable tamper resistant PIN entry apparatus
US5729717A (en) IC card and issuing apparatus allowing multiple applications
US5952641A (en) Security device for controlling the access to a personal computer or to a computer terminal

Legal Events

Date Code Title Description
FPAY Fee payment

Year of fee payment: 4

FPAY Fee payment

Year of fee payment: 8

FPAY Fee payment

Year of fee payment: 12